PeerTube/server/models/oauth-token.js

'use strict'

const logger = require('../helpers/logger')

// ---------------------------------------------------------------------------

module.exports = function (sequelize, DataTypes) {
  const OAuthToken = sequelize.define('OAuthToken',
    {
      accessToken: {
        type: DataTypes.STRING,
        allowNull: false
      },
      accessTokenExpiresAt: {
        type: DataTypes.DATE,
        allowNull: false
      },
      refreshToken: {
        type: DataTypes.STRING,
        allowNull: false
      },
      refreshTokenExpiresAt: {
        type: DataTypes.DATE,
        allowNull: false
      }
    },
    {
      indexes: [
        {
          fields: [ 'refreshToken' ],
          unique: true
        },
        {
          fields: [ 'accessToken' ],
          unique: true
        },
        {
          fields: [ 'userId' ]
        },
        {
          fields: [ 'oAuthClientId' ]
        }
      ],
      classMethods: {
        associate,

        getByRefreshTokenAndPopulateClient,
        getByTokenAndPopulateUser,
        getByRefreshTokenAndPopulateUser,
        removeByUserId
      }
    }
  )

  return OAuthToken
}

// ---------------------------------------------------------------------------

function associate (models) {
  this.belongsTo(models.User, {
    foreignKey: {
      name: 'userId',
      allowNull: false
    },
    onDelete: 'cascade'
  })

  this.belongsTo(models.OAuthClient, {
    foreignKey: {
      name: 'oAuthClientId',
      allowNull: false
    },
    onDelete: 'cascade'
  })
}

function getByRefreshTokenAndPopulateClient (refreshToken) {
  const query = {
    where: {
      refreshToken: refreshToken
    },
    include: [ this.associations.OAuthClient ]
  }

  return this.findOne(query).then(function (token) {
    if (!token) return token

    const tokenInfos = {
      refreshToken: token.refreshToken,
      refreshTokenExpiresAt: token.refreshTokenExpiresAt,
      client: {
        id: token.client.id
      },
      user: {
        id: token.user
      }
    }

    return tokenInfos
  }).catch(function (err) {
    logger.info('getRefreshToken error.', { error: err })
  })
}

function getByTokenAndPopulateUser (bearerToken) {
  const query = {
    where: {
      accessToken: bearerToken
    },
    include: [ this.sequelize.models.User ]
  }

  return this.findOne(query).then(function (token) {
    if (token) token.user = token.User

    return token
  })
}

function getByRefreshTokenAndPopulateUser (refreshToken) {
  const query = {
    where: {
      refreshToken: refreshToken
    },
    include: [ this.sequelize.models.User ]
  }

  return this.findOne(query).then(function (token) {
    token.user = token.User

    return token
  })
}

function removeByUserId (userId, callback) {
  const query = {
    where: {
      userId: userId
    }
  }

  return this.destroy(query).asCallback(callback)
}
Server: add database field validations 2016-12-28 15:49:23 +01:00			`'use strict'`

Server: implement refresh token 2016-07-20 16:23:58 +02:00			`const logger = require('../helpers/logger')`

OAuth/User models refractoring -> use mongoose api 2016-07-01 16:03:53 +02:00			`// ---------------------------------------------------------------------------`

First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`module.exports = function (sequelize, DataTypes) {`
			`const OAuthToken = sequelize.define('OAuthToken',`
			`{`
			`accessToken: {`
Server: add database field validations 2016-12-28 15:49:23 +01:00			`type: DataTypes.STRING,`
			`allowNull: false`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`},`
			`accessTokenExpiresAt: {`
Server: add database field validations 2016-12-28 15:49:23 +01:00			`type: DataTypes.DATE,`
			`allowNull: false`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`},`
			`refreshToken: {`
Server: add database field validations 2016-12-28 15:49:23 +01:00			`type: DataTypes.STRING,`
			`allowNull: false`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`},`
			`refreshTokenExpiresAt: {`
Server: add database field validations 2016-12-28 15:49:23 +01:00			`type: DataTypes.DATE,`
			`allowNull: false`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`}`
			`},`
			`{`
Server: Add postgresql indexes 2016-12-29 09:33:28 +01:00			`indexes: [`
			`{`
			`fields: [ 'refreshToken' ],`
			`unique: true`
			`},`
			`{`
			`fields: [ 'accessToken' ],`
			`unique: true`
			`},`
			`{`
			`fields: [ 'userId' ]`
			`},`
			`{`
			`fields: [ 'oAuthClientId' ]`
			`}`
			`],`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`classMethods: {`
			`associate,`

			`getByRefreshTokenAndPopulateClient,`
			`getByTokenAndPopulateUser,`
			`getByRefreshTokenAndPopulateUser,`
			`removeByUserId`
			`}`
			`}`
			`)`

			`return OAuthToken`
OAuth/User models refractoring -> use mongoose api 2016-07-01 16:03:53 +02:00			`}`

			`// ---------------------------------------------------------------------------`

First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`function associate (models) {`
			`this.belongsTo(models.User, {`
			`foreignKey: {`
			`name: 'userId',`
			`allowNull: false`
			`},`
			`onDelete: 'cascade'`
			`})`
Server: Add postgresql indexes 2016-12-29 09:33:28 +01:00
			`this.belongsTo(models.OAuthClient, {`
			`foreignKey: {`
			`name: 'oAuthClientId',`
			`allowNull: false`
			`},`
			`onDelete: 'cascade'`
			`})`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`}`

Server: implement refresh token 2016-07-20 16:23:58 +02:00			`function getByRefreshTokenAndPopulateClient (refreshToken) {`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`const query = {`
			`where: {`
			`refreshToken: refreshToken`
			`},`
			`include: [ this.associations.OAuthClient ]`
			`}`

			`return this.findOne(query).then(function (token) {`
Server: implement refresh token 2016-07-20 16:23:58 +02:00			`if (!token) return token`

			`const tokenInfos = {`
			`refreshToken: token.refreshToken,`
			`refreshTokenExpiresAt: token.refreshTokenExpiresAt,`
			`client: {`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`id: token.client.id`
Server: implement refresh token 2016-07-20 16:23:58 +02:00			`},`
Server: fix refreshing token 2016-11-04 11:34:23 +01:00			`user: {`
			`id: token.user`
			`}`
Server: implement refresh token 2016-07-20 16:23:58 +02:00			`}`

			`return tokenInfos`
			`}).catch(function (err) {`
			`logger.info('getRefreshToken error.', { error: err })`
			`})`
OAuth/User models refractoring -> use mongoose api 2016-07-01 16:03:53 +02:00			`}`

Server: implement refresh token 2016-07-20 16:23:58 +02:00			`function getByTokenAndPopulateUser (bearerToken) {`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`const query = {`
			`where: {`
			`accessToken: bearerToken`
			`},`
			`include: [ this.sequelize.models.User ]`
			`}`

			`return this.findOne(query).then(function (token) {`
			`if (token) token.user = token.User`

			`return token`
			`})`
OAuth/User models refractoring -> use mongoose api 2016-07-01 16:03:53 +02:00			`}`
Server: implement refresh token 2016-07-20 16:23:58 +02:00
Server: fix refreshing token that fails 2016-11-01 18:16:47 +01:00			`function getByRefreshTokenAndPopulateUser (refreshToken) {`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`const query = {`
			`where: {`
			`refreshToken: refreshToken`
			`},`
			`include: [ this.sequelize.models.User ]`
			`}`

			`return this.findOne(query).then(function (token) {`
			`token.user = token.User`

			`return token`
			`})`
Server: implement refresh token 2016-07-20 16:23:58 +02:00			`}`
Server: when we remove a user, remove the oauthtokens too 2016-10-01 09:12:02 +02:00
			`function removeByUserId (userId, callback) {`
First version with PostgreSQL 2016-12-11 21:50:51 +01:00			`const query = {`
			`where: {`
			`userId: userId`
			`}`
			`}`

			`return this.destroy(query).asCallback(callback)`
Server: when we remove a user, remove the oauthtokens too 2016-10-01 09:12:02 +02:00			`}`